CVE-2012-1970

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
References
Link Resource
http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00028.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00011.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00014.html Mailing List Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2012-1210.html Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2012-1211.html Third Party Advisory
http://www.debian.org/security/2012/dsa-2553 Third Party Advisory
http://www.debian.org/security/2012/dsa-2554 Third Party Advisory
http://www.debian.org/security/2012/dsa-2556 Third Party Advisory
http://www.mozilla.org/security/announce/2012/mfsa2012-57.html Vendor Advisory
http://www.securityfocus.com/bid/55266 Third Party Advisory VDB Entry
http://www.ubuntu.com/usn/USN-1548-1 Third Party Advisory
http://www.ubuntu.com/usn/USN-1548-2 Third Party Advisory
http://www.xerox.com/download/security/security-bulletin/16287-4d6b7b0c81f7b/cert_XRX13-003_v1.0.pdf Third Party Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=745158 Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=758408 Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=761831 Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=764176 Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=775206 Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=777806 Issue Tracking Vendor Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=778765 Issue Tracking Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16910 Third Party Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird_esr:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_desktop:10:sp4:*:*:-:*:*:*
cpe:2.3:o:suse:linux_enterprise_desktop:11:sp2:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:10:sp4:*:*:-:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:*:-:*:*
cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:*:vmware:*:*
cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp2:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_eus:6.3:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:6.3:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*

Configuration 4 (hide)

OR cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*

Configuration 5 (hide)

OR cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

History

21 Oct 2024, 13:55

Type Values Removed Values Added
CPE cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:*

Information

Published : 2012-08-29 10:56

Updated : 2024-10-21 13:55


NVD link : CVE-2012-1970

Mitre link : CVE-2012-1970

CVE.ORG link : CVE-2012-1970


JSON object : View

Products Affected

opensuse

  • opensuse

suse

  • linux_enterprise_server
  • linux_enterprise_desktop
  • linux_enterprise_software_development_kit

debian

  • debian_linux

mozilla

  • seamonkey
  • thunderbird_esr
  • firefox
  • thunderbird

redhat

  • enterprise_linux_desktop
  • enterprise_linux_server
  • enterprise_linux_server_eus
  • enterprise_linux_eus
  • enterprise_linux_workstation

canonical

  • ubuntu_linux
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer